|
Vulnerability Assessment & Network Security Forums |
|||||||||
If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important. If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery. Home >> Browse Vulnerability Assessment Database >> Misc. >> Qpopper Insecure File Handling Vulnerabilities Vulnerability Assessment Details
|
Qpopper Insecure File Handling Vulnerabilities |
||
Checks for insecure file handling vulnerabilities in Qpopper Detailed Explanation for this Vulnerability Assessment Summary : The remote POP3 server is affected by multiple file handling flaws. Description : According to its banner, the remote host is running a version of the Qpopper POP3 server that suffers from two local, insecure file handling vulnerabilities. First, it fails to properly drop root rights when processing certain local files, which could lead to overwriting or creation of arbitrary files as root. And second, it fails to set the process umask, potentially permiting creation of group- or world-writable files. See also : http://bugs.gentoo.org/show_bug.cgi?id=90622 http://www.mail-archive.com/qpopper@lists.pensive.org/msg05140.html Solution : Upgrade to Qpopper 4.0.6 or later. Network Security Threat Level: High / CVSS Base Score : 7 (AV:L/AC:L/Au:NR/C:C/A:C/I:C/B:N) Networks Security ID: 13714 Vulnerability Assessment Copyright: This script is Copyright (C) 2005-2006 Tenable Network Security |
||
Cables, Connectors |
Vintage IBM 2 Button PS2 Sleek Mouse 28L3673 Black New Open Box Rare
$41.59
Vintage Computer Mouse - Todays Mouse - Windows 95 P S/2
$9.99
Drakware ADB2USB - vintage Apple ADB to USB keyboard adapter
$29.95
Vintage Apple Lisa Brochure, very nice condition
$50.00
Vintage Classic Apple Macintosh System Boot Install Disk Floppy/CD *Pick Version
$10.39
Vintage Compaq 141649-004 2 Button PS/2 Gray Mouse M-S34 - FAST SHIPPING - NEW
$8.99
Z80 - NABU PC & Keyboard - Vintage New Old Stock (Retro 80's)
$139.99
Vintage Black Microsoft intellimouse Optical USB Wheel Mouse 1.1/1.1a - EXC COND
$28.95
Vintage Commodore 128 Personal Computer w/Box 1987 Untested As Is Rare
$249.99
Vintage NOS Keytronic E03601Q AT/XT 5 Pin DIN Wired Computer Keyboard, SEALED
$89.99
|
||
No Discussions have been posted on this vulnerability. |